Date:         Tue, 28 Jul 2009 17:48:37 -0500
Reply-To:     Connie Sieh 
Sender:       Security Errata for Scientific Linux
              
From:         Connie Sieh 
Subject:      Security ERRATA Moderate: libtiff for SL3.0.x, SL 4.x,
              SL 5.x on i386/x86_64
Comments: To: scientific 

Synopsis:          Moderate: libtiff security update
CVE Names:         CVE-2009-2285 CVE-2009-2347

CVE-2009-2285 libtiff: LZWDecodeCompat underflow
CVE-2009-2347 libtiff: integer overflows in various inter-color spaces conversion tools (crash, ACE)

Several integer overflow flaws, leading to heap-based buffer overflows,
were found in various libtiff color space conversion tools. An attacker
could create a specially-crafted TIFF file, which once opened by an
unsuspecting user, would cause the conversion tool to crash or,
potentially, execute arbitrary code with the privileges of the user running
the tool. (CVE-2009-2347)

A buffer underwrite flaw was found in libtiff's Lempel-Ziv-Welch (LZW)
compression algorithm decoder. An attacker could create a specially-crafted
LZW-encoded TIFF file, which once opened by an unsuspecting user, would
cause an application linked with libtiff to access an out-of-bounds memory
location, leading to a denial of service (application crash).
(CVE-2009-2285)

The CVE-2009-2347 flaws were discovered by Tielei Wang from ICST-ERCIS,
Peking University.

SL 3.0.x

   SRPM:
      libtiff-3.5.7-33.el3.src.rpm

   i386:
      libtiff-3.5.7-33.el3.i386.rpm
      libtiff-devel-3.5.7-33.el3.i386.rpm

   x86_64:
      libtiff-3.5.7-33.el3.i386.rpm
      libtiff-3.5.7-33.el3.x86_64.rpm
      libtiff-devel-3.5.7-33.el3.x86_64.rpm

SL 4.x

   SRPM:
      libtiff-3.6.1-12.el4_8.4.src.rpm

   i386:
      libtiff-3.6.1-12.el4_8.4.i386.rpm
      libtiff-devel-3.6.1-12.el4_8.4.i386.rpm

   x86_64:
      libtiff-3.6.1-12.el4_8.4.i386.rpm
      libtiff-3.6.1-12.el4_8.4.x86_64.rpm
      libtiff-devel-3.6.1-12.el4_8.4.x86_64.rpm

SL 5.x

   SRPM:
      libtiff-3.8.2-7.el5_3.4.src.rpm

   i386:
      libtiff-3.8.2-7.el5_3.4.i386.rpm
      libtiff-devel-3.8.2-7.el5_3.4.i386.rpm

   x86_64:
      libtiff-3.8.2-7.el5_3.4.i386.rpm
      libtiff-3.8.2-7.el5_3.4.x86_64.rpm
      libtiff-devel-3.8.2-7.el5_3.4.i386.rpm
      libtiff-devel-3.8.2-7.el5_3.4.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2009-2285 Moderate: libtiff SL3.0.x, SL 4.x,

Moderate: libtiff security update

Summary

Date:         Tue, 28 Jul 2009 17:48:37 -0500Reply-To:     Connie Sieh Sender:       Security Errata for Scientific Linux              From:         Connie Sieh Subject:      Security ERRATA Moderate: libtiff for SL3.0.x, SL 4.x,              SL 5.x on i386/x86_64Comments: To: scientific Synopsis:          Moderate: libtiff security updateCVE Names:         CVE-2009-2285 CVE-2009-2347CVE-2009-2285 libtiff: LZWDecodeCompat underflowCVE-2009-2347 libtiff: integer overflows in various inter-color spaces conversion tools (crash, ACE)Several integer overflow flaws, leading to heap-based buffer overflows,were found in various libtiff color space conversion tools. An attackercould create a specially-crafted TIFF file, which once opened by anunsuspecting user, would cause the conversion tool to crash or,potentially, execute arbitrary code with the privileges of the user runningthe tool. (CVE-2009-2347)A buffer underwrite flaw was found in libtiff's Lempel-Ziv-Welch (LZW)compression algorithm decoder. An attacker could create a specially-craftedLZW-encoded TIFF file, which once opened by an unsuspecting user, wouldcause an application linked with libtiff to access an out-of-bounds memorylocation, leading to a denial of service (application crash).(CVE-2009-2285)The CVE-2009-2347 flaws were discovered by Tielei Wang from ICST-ERCIS,Peking University.SL 3.0.x   SRPM:      libtiff-3.5.7-33.el3.src.rpm   i386:      libtiff-3.5.7-33.el3.i386.rpm      libtiff-devel-3.5.7-33.el3.i386.rpm   x86_64:      libtiff-3.5.7-33.el3.i386.rpm      libtiff-3.5.7-33.el3.x86_64.rpm      libtiff-devel-3.5.7-33.el3.x86_64.rpmSL 4.x   SRPM:      libtiff-3.6.1-12.el4_8.4.src.rpm   i386:      libtiff-3.6.1-12.el4_8.4.i386.rpm      libtiff-devel-3.6.1-12.el4_8.4.i386.rpm   x86_64:      libtiff-3.6.1-12.el4_8.4.i386.rpm      libtiff-3.6.1-12.el4_8.4.x86_64.rpm      libtiff-devel-3.6.1-12.el4_8.4.x86_64.rpmSL 5.x   SRPM:      libtiff-3.8.2-7.el5_3.4.src.rpm   i386:      libtiff-3.8.2-7.el5_3.4.i386.rpm      libtiff-devel-3.8.2-7.el5_3.4.i386.rpm   x86_64:      libtiff-3.8.2-7.el5_3.4.i386.rpm      libtiff-3.8.2-7.el5_3.4.x86_64.rpm      libtiff-devel-3.8.2-7.el5_3.4.i386.rpm      libtiff-devel-3.8.2-7.el5_3.4.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity

Related News

4.Lock AbstractDigital Esm H320
2 - 3 min read
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport
28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly
19.Laptop Bed Esm H320
2 - 3 min read
The recently released Linux Kernel 6.9 brings forth a blend of crucial upgrades and enhancements, catering to the ever-evolving needs of the Linux
4.Lock AbstractDigital Esm H320
1 - 2 min read
Nmap 7.95 introduces myriad enhancements, primarily focusing on OS and service detection signatures. This reflects the dedication of the Nmap

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved